XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

Jennykichu@lemmy.dbzer0.com · 7 months ago

XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

Kindness@lemmy.ml · edit-2 7 months ago

deleted by creator

Karna@lemmy.ml · 7 months ago

flying_sheep@lemmy.ml · 7 months ago

Arch was never affected, as described in their news post about it. Arch users had malicious code on their hard disks, but not the part that would have called into it.

SpaceCowboy@lemmy.ca · 7 months ago

Before resting on our laurels, we should consider it’s possible it’s more widespread but just not being disclosed until after it’s patched.

It would be wise to be on the lookout for security patches for the next few days.

Lemmchen@feddit.de · 7 months ago

Consider this the exception to the rule. There’s no reason we should assume this timeline is the norm.

Kindness@lemmy.ml · edit-2 7 months ago

deleted by creator

XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

XZ Hack - "If this timeline is correct, it’s not the modus operandi of a hobbyist. [...] It wouldn’t be surprising if it was paid for by a state actor."

Technologist vs spy: the xz backdoor debate